Integer Signedness Issue in res_pjsip_sdp_rtp Module Allows Remote Crash

Integer Signedness Issue in res_pjsip_sdp_rtp Module Allows Remote Crash

CVE-2019-7251 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

An Integer Signedness issue (for a return code) in the res_pjsip_sdp_rtp module in Digium Asterisk versions 15.7.1 and earlier and 16.1.1 and earlier allows remote authenticated users to crash Asterisk via a specially crafted SDP protocol violation.

Learn more about our User Device Pen Test.